This short video discusses the use of Hyper Text Transfer Protocol Secure (https) when connecting to websites especially on a public network. This type of security is very important with the release of simple tools for session side-jacking. See our previous post for other wifi security tips.
You might have noticed a lock or key icon when visiting certain websites. This means that your connection to that website is securely encrypted. This makes nearly impossible for other people to read the data that you and that website are sharing. When you are on a public network this secure connection is critical. Without it anyone on that network could listen in and capture the information flowing between you and the website you’re using. Always make sure that when you enter personal information or login in to a website that the address in the address bar says https. When you are on a public network some websites will secure your login information but not all the communication following. Other users of the same network could intercept that information and either read it or use it to impersonate you. To secure yourself you can follow several different step some of which can be combined and each of varying levels of security.
Step 1. Set your most commonly used websites to force secure connections whenever you are logged in. For example, Facebook and Gmail allow you to do this. These lifehacker posts detail:
Step 2: Install the FireFox plugin “https everywhere” that forces secure connections on all websites known to support them. This may slow down your browsing experience but is critical if you are on a public network. Fine to turn off at home.
Other options: You can mitigate all connection risks in public by choosing to use a Virtual Private Network connection or by using a mobile broadband option. Hotspot shield is a great free solution for most users. It does insert advertising into pages that you visit but it will keep coffee shop snoops from seeing anything you’re doing. If you are a more technical user, you could explore the use of “BlackSheep,” another FireFox addon that will let you see if someone else on the network is using FireSheep.
